Tonight, Kickstarter announced they had a security breach early this week, and they didn’t know until law enforcement officials told them on Wednesday night. Kickstarter CEO Yancey Strickler wrote a letter of apology to users that encouraged people to change their passwords to be safe. The letter was posted on the company blog and emailed to users today.

The company says no credit card numbers were stolen, because “Kickstarter does not store full credit card numbers.”

@kickstarter Perhaps you should have told us that out passwords were stolen when it happened THREE DAYS AGO? How very impressive of you…